Beefy Boxes and Bandwidth Generously Provided by pair Networks
Don't ask to ask, just ask
 
PerlMonks  

Re^2: Simple question on SQL Injection

by andreas1234567 (Vicar)
on Oct 09, 2007 at 18:14 UTC ( #643767=note: print w/replies, xml ) Need Help??


in reply to Re: Simple question on SQL Injection
in thread Simple question on SQL Injection

The canonical way to prevent SQL injection is to use placeholders.
An alternative approach is to allow access to data through stored procedures only, and disallow dynamic sql altogether. Such an approach has a number of interesting benefits, including performance and security.
--
Andreas

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://643767]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others rifling through the Monastery: (9)
As of 2019-09-18 17:33 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    The room is dark, and your next move is ...












    Results (235 votes). Check out past polls.

    Notices?